CVE-2021-43949 vulnerability in Atlassian Products
Published on January 10, 2022

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view private objects via a Broken Access Control vulnerability in the Custom Fields feature. The affected versions are before version 4.21.0.

NVD

Products Associated with CVE-2021-43949

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-43949 are published in these products:

Atlassian Data Center

Atlassian Jira

Affected Versions

Atlassian Jira Service Management Server:

Version unspecified and below 4.21.0 is affected.

Atlassian Jira Service Management Data Center:

Version unspecified and below 4.21.0 is affected.

Exploit Probability

EPSS

0.32%

Percentile

54.37%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-43949 vulnerability in Atlassian ProductsPublished on January 10, 2022

Products Associated with CVE-2021-43949

Affected Versions

Exploit Probability

CVE-2021-43949 vulnerability in Atlassian Products
Published on January 10, 2022